"Software Supply Chain Attacks: An Illustrated Typological Review"

Sean Cordey, a former researcher in the Cyberdefense Project within the Risk and Resilience Team at ETH Zürich’s Center for Security Studies (CSS), released a report titled "Software Supply Chain Attacks: An Illustrated Typological Review." The report explores the potentially destructive and strategic effects of software supply chain attacks, as well as their increased use by malicious actors. Critical dependencies, heightened cyber threats, and strategic competitiveness are transforming supply chain security issues into national and international security concerns. The topics of software supply chain attacks, broader mitigation, and protection elements that fall under the term cyber supply chain risk management are at the junction of supply chains and cyber. The report's overarching objective is to present an illustrative overview of software supply chain attacks and raise awareness of their types, uses, and potential consequences. This article continues to discuss the new report on software supply chain attacks. 

ETH Zurich reports "Software Supply Chain Attacks: An Illustrated Typological Review"